Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=autotest-admin.omnicurenow.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 06, 2025
Valid Until
January 04, 2026
51 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9F:FF:81:9D:A9:29:C7:B2:A6:8A:29:FD:92:0D:41:03:3D:1A:85:7E:4A:1C:52:4F:24:81:9E:F4:FE:0F:B5:DD
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
livewire.red
www.505swing.com
www.sej.5u.hk
demo.abi.ai
addismind.com
www.addismind.com
adecuo.com.co
app.advisercloud.es
posdeeplink.advn.app
vma-run-thru.aisessor.com
tienda.alkimio.com
www.allcityprinting.com
ambermaps.com
www.amitchita.com
kadunaline.arrive.ng
www.aut0.ru
www.avanti-untergriesbach.de
beanon.com
www.brabaja.com
bristow.app
www.bryanoyloe.com
fire.cardiast.com
admin.castersociety.com
ibuprom.com.ua
enlink-uat.dnse.com.vn
conectoenergia.com
book.craftsanddraftsnc.com
www.dealercurator.com
deserttravelstours.com
dragonmail.xyz
elicomcentral.se
kristof.engerau.com
enviofotos.com.br
hiringhelper.essilen-research.com
int.evnnovator.com
fairairportpsc.com
www.fanseed.io
www.finalgirl.run
www.fruit.com.ar
ta.futurecoder.io
app.getwombat.io
girlule-pro.xyz
pqrs.migracioncolombiac3.gov.co
gracekbeck.com
griboubouille.fr
www.idrate.co
login.im-at.com
devv3staging.inseat.menu
keskoenterprise.com
kyaamodular.com
ofec.lapieza.io
dashboard.letseatbai.com
liremosaic.com
logistica5.mx
app3.lottoandroid.com
www.lukaslegters.nl
mkutano.org
console.monitor-center.com
morisplacecoffee.com
mymcdrewardsfindyourfavorites.ca
mypagex.com
nerdsforchrist.org
nickadkins.design
nopwd.rocks
www.novicsoft.com
www.nutch.be
olokun.com.mx
www.olvrouw.be
autotest-admin.omnicurenow.com
www.biz.ossapp.com.au
parchate.com
sflauren.policyrocket.app
university.pxcode.io
rd.qpwin.me
rastlinjaki-impact.si
central.redbrickoffices.com
roadway.beta.roadbotics.com
tracker.sahajmarg.org
admin.schunk-remotesupport.com
www.seeyamobile.net
app.sfvic.com
stage.admin.sliceq.com
spacetime.zone
pwa.suicidepreventionapp.com
surga.lt
php.t-david.com
gestion.tanguiimmobilier.com
thespaghettidetective.com
kayakear.turnosweb.app
www.unthankful.club
meals.usmanshabbir.com
link.vatrin.app
www.vendlive.us
telemed.vivadoctor.com.br
pizza.vpv.io
survey.waterupgradessave.org
coop.wildweed.com
payment.yellotalk.co
www.yorkland.org
auth.yta.se
Other domains in certificate